Shetef solutions & consulting 1998 Ltd

por Marcia Maria Qua 23 Out 2013, 19:48

como faço para remover?

por Wings [In Memoriam] Qua 23 Out 2013, 19:51

O procedimento abaixo não é a solução definitiva.

Removeremos após vc colar o relatório do AdwCleaner.

Shetef solutions & consulting 1998 Ltd 772309

Shetef solutions & consulting 1998 Ltd 772309

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Salve qualquer trabalho aberto e feche o seu navegador

*Execute-o, clique [Examinar] e aguarde o término

*Clique [Limpar] e aguarde o término

*Caso seja solicitada a reinicialização do PC, clique [OK] para reiniciar.

*Cole o relatório C:\AdwCleaner\AdwCleaner[S0].txt

por Marcia Maria Qua 23 Out 2013, 20:00

# AdwCleaner v3.010 - Relatório criado 23/10/2013 às 19:53:40
# Atualizado 20/10/2013 por Xplode
# Sistema Operacional : Windows 7 Home Basic Service Pack 1 (64 bits)
# Usuário : Márcia - MÁRCIA-PC
# Executando de : C:\Users\Márcia\Downloads\AdwCleaner.exe
# Opção : Limpar

***** [ Serviços ] *****

Serviço Deletada : SProtection
Serviço Deletada : vToolbarUpdater17.0.12

***** [ Arquivos / Pastas ] *****

Pasta Deletada : C:\ProgramData\Ask
Pasta Deletada : C:\ProgramData\AVG Secure Search
Pasta Deletada : C:\ProgramData\Babylon
Pasta Deletada : C:\ProgramData\baidu
Pasta Deletada : C:\ProgramData\BonanzaDealsLive
Pasta Deletada : C:\ProgramData\boost_interprocess
Pasta Deletada : C:\ProgramData\IBUpdaterService
Pasta Deletada : C:\ProgramData\Iminent
Pasta Deletada : C:\ProgramData\Tarma Installer
Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Pasta Deletada : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro
Pasta Deletada : C:\Program Files (x86)\AVG Secure Search
Pasta Deletada : C:\Program Files (x86)\Iminent
Pasta Deletada : C:\Program Files (x86)\MyPC Backup
Pasta Deletada : C:\Program Files (x86)\SweetIM
Pasta Deletada : C:\Program Files (x86)\Common Files\AVG Secure Search
Pasta Deletada : C:\Program Files (x86)\Common Files\Umbrella
Pasta Deletada : C:\Windows\Installer\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
Pasta Deletada : C:\Users\Márcia\AppData\Local\AVG Secure Search
Pasta Deletada : C:\Users\Márcia\AppData\Local\b1e
Pasta Deletada : C:\Users\Márcia\AppData\Local\BonanzaDealsLive
Pasta Deletada : C:\Users\Márcia\AppData\Local\lollipop
Pasta Deletada : C:\Users\MRCIA~1\AppData\Local\Temp\Iminent
Pasta Deletada : C:\Users\Márcia\AppData\LocalLow\AVG Secure Search
Pasta Deletada : C:\Users\Márcia\AppData\LocalLow\Delta
Pasta Deletada : C:\Users\Márcia\AppData\LocalLow\incredibar.com
Pasta Deletada : C:\Users\Márcia\AppData\LocalLow\Minibar
Pasta Deletada : C:\Users\Márcia\AppData\LocalLow\SimplyTech
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\B1Toolbar
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\Babylon
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\baidu
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\Betcat
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\DealPly
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\file scout
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\Funmoods
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\Iminent
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\optimizer pro
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\PerformerSoft
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\SpeedAnalysis2
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\Systweak
Pasta Deletada : C:\Users\Márcia\AppData\Roaming\UpdaterEX
Pasta Deletada : C:\Users\Márcia\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\Extensions\webbooster@iminent.com.xpi
Arquivo Deletada : C:\Windows\System32\roboot64.exe
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\speedanalysis.ico
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\defaults\pref\all-iminent.js
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\invalidprefs.js
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\Askcom.xml
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\Babylon.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\BrowserProtect.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\delta.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\MyStart Search.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\SweetIM Search.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\Web Search.xml
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Web Search.xml
Arquivo Deletada : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\user.js
Arquivo Deletada : C:\Program Files (x86)\Mozilla Firefox\user.js
Arquivo Deletada : C:\Users\Márcia\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Arquivo Deletada : C:\Users\Márcia\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Arquivo Deletada : C:\Users\Márcia\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage
Arquivo Deletada : C:\Windows\System32\Tasks\Dealply
Arquivo Deletada : C:\Windows\Tasks\FindLyrics Update.job
Arquivo Deletada : C:\Windows\System32\Tasks\FindLyrics Update
Arquivo Deletada : C:\Windows\System32\Tasks\Funmoods
Arquivo Deletada : C:\Windows\Tasks\UpdaterEX.job
Arquivo Deletada : C:\Windows\System32\Tasks\UpdaterEX

***** [ Atalhos ] *****

***** [ Registro ] *****

Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Valor Deletedo : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{336D0C35-8A85-403A-B9D2-65C292C39087}]
Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Valor Deletedo : HKCU\Software\Mozilla\Firefox\Extensions [speedanalysis02@SpeedAnalysis.com]
Valor Deletedo : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [speedanalysis02@SpeedAnalysis.com]
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Chave Deletedo : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Chave Deletedo : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Valor Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Chave Deletedo : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandle.1
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.ActiveContentHandler
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler
Chave Deletedo : HKLM\SOFTWARE\Classes\IminentWebBooster.TinyUrlHandler.1
Chave Deletedo : HKLM\SOFTWARE\Classes\PricePeep.PricePeepBho
Chave Deletedo : HKLM\SOFTWARE\Classes\PricePeep.PricePeepBho.1
Chave Deletedo : HKLM\SOFTWARE\Classes\Prod.cap
Chave Deletedo : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Chave Deletedo : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Chave Deletedo : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Chave Deletedo : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Chave Deletedo : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Chave Deletedo : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.BHO
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.BHO.1
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.Sandbox
Chave Deletedo : HKLM\SOFTWARE\Classes\CrossriderApp0041896.Sandbox.1
Chave Deletedo : HKCU\Software\a5388dbe534ee41
Chave Deletedo : HKLM\SOFTWARE\a5388dbe534ee41
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Chave Deletedo : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{26C9BBE4-6D45-4AB6-A5B4-E068C9F5EF6D}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{D8F01233-2DE6-4EE7-8988-37263F00651B}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Chave Deletedo : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411181196}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Deletedo : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{3BF3DED5-0FC8-4207-AC09-AA7B5AF4E408}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Chave Deletedo : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{415419C3-DAD0-4DF1-AC37-22C72AD81878}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{44C9CC91-6A4A-4579-B4B5-899ECDC18DC6}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Chave Deletedo : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Chave Deletedo : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]
Valor Deletedo : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Valor Deletedo : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Chave Deletedo : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Valor Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Chave Deletedo : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Chave Deletedo : HKCU\Software\AVG Secure Search
Chave Deletedo : HKCU\Software\BabSolution
Chave Deletedo : HKCU\Software\BI
Chave Deletedo : HKCU\Software\BonanzaDealsLive
Chave Deletedo : HKCU\Software\Cr_Installer
Chave Deletedo : HKCU\Software\DataMngr
[#] Chave Deletedo : HKCU\Software\DataMngr_Toolbar
Chave Deletedo : HKCU\Software\filescout
Chave Deletedo : HKCU\Software\Funmoods
Chave Deletedo : HKCU\Software\IM
Chave Deletedo : HKCU\Software\Iminent
Chave Deletedo : HKCU\Software\ImInstaller
Chave Deletedo : HKCU\Software\InstallCore
Chave Deletedo : HKCU\Software\lollipop
Chave Deletedo : HKCU\Software\Optimizer Pro
Chave Deletedo : HKCU\Software\simplytech
Chave Deletedo : HKCU\Software\smartbar
Chave Deletedo : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Deletedo : HKCU\Software\AppDataLow\Software\findlyrics
Chave Deletedo : HKCU\Software\AppDataLow\Software\simplytech
Chave Deletedo : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Chave Deletedo : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Chave Deletedo : HKLM\Software\AVG Secure Search
Chave Deletedo : HKLM\Software\AVG Security Toolbar
Chave Deletedo : HKLM\Software\Babylon
Chave Deletedo : HKLM\Software\BonanzaDealsLive
Chave Deletedo : HKLM\Software\DataMngr
Chave Deletedo : HKLM\Software\IB Updater
Chave Deletedo : HKLM\Software\Iminent
Chave Deletedo : HKLM\Software\systweak
Chave Deletedo : HKLM\Software\Umbrella
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Chave Deletedo : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Chave Deletedo : [x64] HKLM\SOFTWARE\IB Updater
Chave Deletedo : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Navegadores ] *****

-\\ Internet Explorer v10.0.9200.16720

Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Start Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Search Bar]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\Search [Search Page]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Page]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Start Default_Page_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Default_Search_URL]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Bar]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\Search [Search Page]
Configurações Restauradas : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [(Default)]
Configurações Restauradas : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [(Default)]

-\\ Mozilla Firefox v24.0 (pt-BR)

[ Arquivo : C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\prefs.js ]

Linha deletada : user_pref("extensions.delta.admin", false);
Linha deletada : user_pref("extensions.delta.aflt", "babsst");
Linha deletada : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Linha deletada : user_pref("extensions.delta.autoRvrt", "false");
Linha deletada : user_pref("extensions.delta.dfltLng", "pt");
Linha deletada : user_pref("extensions.delta.excTlbr", false);
Linha deletada : user_pref("extensions.delta.ffxUnstlRst", true);
Linha deletada : user_pref("extensions.delta.id", "aef2a8200000000000007ce9d3f8b858");
Linha deletada : user_pref("extensions.delta.instlDay", "15895");
Linha deletada : user_pref("extensions.delta.instlRef", "sst");
Linha deletada : user_pref("extensions.delta.newTab", false);
Linha deletada : user_pref("extensions.delta.prdct", "delta");
Linha deletada : user_pref("extensions.delta.prtnrId", "delta");
Linha deletada : user_pref("extensions.delta.rvrt", "false");
Linha deletada : user_pref("extensions.delta.smplGrp", "none");
Linha deletada : user_pref("extensions.delta.tlbrId", "base");
Linha deletada : user_pref("extensions.delta.tlbrSrchUrl", "");
Linha deletada : user_pref("extensions.delta.vrsn", "1.8.21.5");
Linha deletada : user_pref("extensions.delta.vrsnTs", "1.8.21.515:46:52");
Linha deletada : user_pref("extensions.delta.vrsni", "1.8.21.5");
Linha deletada : user_pref("extensions.delta_i.babExt", "");
Linha deletada : user_pref("extensions.delta_i.babTrack", "affID=119556&tt=040713_rdrctful&tsp=4938");
Linha deletada : user_pref("extensions.delta_i.srcExt", "ss");

-\\ Google Chrome v30.0.1599.101

[ Arquivo : C:\Users\Márcia\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deletedo : search_url
Deletedo : keyword

*************************

AdwCleaner[R0].txt - [44906 octets] - [23/10/2013 19:52:43]
AdwCleaner[S0].txt - [38899 octets] - [23/10/2013 19:53:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [38960 octets] ##########

por Wings [In Memoriam] Qua 23 Out 2013, 20:06

Baixe o arquivo fix.zip e extraia o seu conteúdo

*Clique com o botão direito do mouse no fix.bat e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Reinicie o PC

Shetef solutions & consulting 1998 Ltd 772309

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Farbar) e salve-o no Desktop

*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Aceite o contrato, desmarque a opção Addition.txt, clique [Scan] e ao término clique [OK]

*Cole ou anexe o relatório FRST.txt criado no Desktop

por Marcia Maria Qua 23 Out 2013, 20:27

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-10-2013
Ran by Márcia (administrator) on MÁRCIA-PC on 23-10-2013 20:22:48
Running from C:\Users\Márcia\Downloads
Windows 7 Home Basic Service Pack 1 (X64) OS Language: Portuguese Brazilian
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(GAS Tecnologia) C:\PROGRA~2\GbPlugin\GbpSv.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(McAfee, Inc.) C:\Windows\system32\mfevtps.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidFind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apntex.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(keepvid.com Company) C:\Users\Márcia\AppData\Local\keepvid.com.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Apoint] - C:\Program Files\DellTPad\Apoint.exe [608112 2011-03-29] (Alps Electric Co., Ltd.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-05-27] (IDT, Inc.)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [QuickSet] - c:\Program Files\Dell\QuickSet\QuickSet.exe [3668336 2011-03-24] (Dell Inc.)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [627360 2011-05-20] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379552 2011-05-20] (Atheros Commnucations)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [fssui] - C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [884584 2012-03-08] (Microsoft Corporation)
HKLM\...\Run: [DellStage] - C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj [483424 2012-02-01] ()
HKLM\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM-x32\...\Run: [RemoteControl9] - C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2010-10-01] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD9LanguageShortcut] - C:\Program Files (x86)\CyberLink\PowerDVD9\Language\Language.exe [50472 2010-09-17] (CyberLink Corp.)
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [503942 2011-04-13] (Creative Technology Ltd)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [RoxWatchTray] - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [AccuWeatherWidget] - C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj [2835443 2012-02-01] ()
HKLM-x32\...\Run: [Sidebar] - C:\Program Files (x86)\Windows Sidebar\sidebar.exe [1174016 2010-11-21] (Microsoft Corporation)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2013\avgui.exe [4411952 2013-09-23] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [keepvid] - C:\Users\Márcia\AppData\Local\keepvid.com.exe [1120256 2013-06-10] (keepvid.com Company)
Startup: C:\Users\Márcia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor da tecnologia Intel® Turbo Boost 2.0.lnk
ShortcutTarget: Monitor da tecnologia Intel® Turbo Boost 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {00C8D9EC-1CEE-40BB-AB4E-90C0D0C97EEB} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
SearchScopes: HKCU - {A54311D7-8F3D-4461-8DDE-66D994254694} URL = [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll No File
BHO: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - No File
BHO-x32: keepvid.com - {49ed9900-38cd-453c-bba7-3f2613317f5a} - C:\Users\MRCIA~1\AppData\Local\keepvid.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Auxiliar de Conexão do Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540000} - C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll (Banco do Brasil)
BHO-x32: GbIehObj Class - {C41A1C0E-EA6C-11D4-B1B8-444553540003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll (Caixa Economica Federal)
BHO-x32: SoundFrost - {d997c836-ff82-4519-b459-1482ba942a4f} - C:\PROGRA~2\BAIXAR~1\SOUNDF~1.DLL No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399F83} - C:\PROGRAM FILES (X86)\GBPLUGIN\gbieh.dll [1487912 2013-10-07] (Banco do Brasil)
ShellExecuteHooks-x32: GbPluginObj Class - {E37CB5F0-51F5-4395-A808-5FA49E399003} - C:\Program Files (x86)\GbPlugin\gbiehcef.dll [1383240 2013-07-01] (Caixa Economica Federal)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: gastecnologia.com.br/sf/bb - C:\Users\Márcia\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll (GAS Tecnologia)
FF SearchPlugin: C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\searchplugins\improvedsearch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\buscape.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mercadolivre.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-br.xml
FF Extension: No Name - C:\Users\Márcia\AppData\Roaming\Mozilla\Firefox\Profiles\qy3ny16y.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKCU\...\Firefox\Extensions: [{87F8774F-B485-47E2-A755-A40A8A5E886C}] - C:\Users\Márcia\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF Extension: Modulo de Seguranca - Banco do Brasil - C:\Users\Márcia\AppData\Local\GAS Tecnologia\GBBD\bb\xpi
FF HKCU\...\Firefox\Extensions: [SoundFrost@helper.com] - C:\Program Files (x86)\Baixar Musicas Gratis\SoundFrost.xpi
FF HKCU\...\Firefox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack] - C:\Program Files (x86)\Baixar Musicas Gratis\SoundFrost.xpi

Chrome:
=======
CHR HomePage: [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR RestoreOnStartup: "https://www.google.com.br/webhp?source=search_app&gws_rd=cr"
CHR DefaultSearchURL: (Web Search) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR DefaultSuggestURL: (Web Search) - "suggest_url": "",
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Google Talk Plugin) - C:\Users\M00E1rcia\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll No File
CHR Plugin: (Google Talk Plugin Video Accelerator) - C:\Users\M00E1rcia\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll No File
CHR Plugin: (Google Talk Plugin Video Renderer) - C:\Users\M00E1rcia\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\15.3.0\\npsitesafety.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll No File
CHR Plugin: (Windows Live0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (M00F3dulo de Prote00E700E3o - Banco do Brasil) - C:\Users\M00E1rcia\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.16) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Extension: (Google Drive) - C:\Users\MRCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\MRCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\MRCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\MRCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\MRCIA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [fplhdcjmbpfkejbhngmlngaecbjmoimd] - C:\Program Files\AVAST Software\Avast\AdBlocker\Chrome\avast-adblocker-chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] - C:\Program Files (x86)\LemurLeap\jlnfdbbladgcmhhamgkioifhbobjaoof.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-20] (Atheros)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [4939312 2013-07-04] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [283136 2013-07-23] (AVG Technologies CZ, s.r.o.)
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [7168 2009-07-13] (Microsoft Corporation)
R2 GbpSv; C:\PROGRA~2\GbPlugin\GbpSv.exe [410152 2013-05-23] (GAS Tecnologia)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-02-19] (McAfee, Inc.)
S3 msiserver; C:\Windows\SysWow64\msiexec.exe [73216 2010-11-21] (Microsoft Corporation)
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [427520 2012-02-07] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [246072 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [71480 2013-07-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [206648 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [311608 2013-07-20] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [116536 2013-07-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [45880 2013-09-05] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [240952 2013-03-21] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-10-01] (AVG Technologies)
R1 Bfilter; C:\Windows\System32\drivers\Bfilter.sys [46912 2013-07-15] (Baidu, Inc.)
R1 Bfmon; C:\Windows\System32\drivers\Bfmon.sys [32064 2013-07-15] (Baidu, Inc.)
R1 Bprotect; C:\Windows\System32\drivers\Bprotect.sys [100960 2013-08-16] (Baidu, Inc.)
S0 GbpKm; C:\Windows\SysWow64\drivers\gbpkm.sys [46440 2012-10-09] (GAS Tecnologia)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179280 2013-02-19] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [771536 2013-02-19] (McAfee, Inc.)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [x]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\3.7.0.0\PCFApiUtil64.sys [x]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2013-10-23 20:22 - 2013-10-23 20:22 - 00000000 ____D C:\FRST
2013-10-23 20:21 - 2013-10-23 20:21 - 01955374 _____ (Farbar) C:\Users\Márcia\Downloads\FRST64.exe
2013-10-23 20:18 - 2013-10-23 20:18 - 00000000 ___RD C:\Users\Márcia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2013-10-23 20:15 - 2013-10-23 20:15 - 00000587 _____ C:\Users\Márcia\Downloads\fix.zip
2013-10-23 19:52 - 2013-10-23 19:54 - 00000000 ____D C:\AdwCleaner
2013-10-23 19:51 - 2013-10-23 19:51 - 01060070 _____ C:\Users\Márcia\Downloads\AdwCleaner.exe
2013-10-23 19:12 - 2013-10-23 19:12 - 00807936 _____ C:\Users\Márcia\Downloads\A Pedra.pps
2013-10-23 09:33 - 2013-10-23 18:37 - 00000000 ____D C:\Users\Márcia\AppData\Local\CS Browser Assistant
2013-10-23 09:33 - 2013-10-23 09:33 - 00000000 ____D C:\Users\Márcia\AppData\Roaming\eCyber
2013-10-23 09:33 - 2013-08-02 15:29 - 00217176 _____ C:\Windows\SysWOW64\unrar.dll
2013-10-23 09:18 - 2013-10-23 09:18 - 00000000 ____D C:\Users\Márcia\AppData\Local\{48EDF1B1-BFF6-4285-ADF3-6954BAF8F0D6}
2013-10-22 22:42 - 2013-08-16 06:43 - 00100960 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bprotect.sys
2013-10-22 22:42 - 2013-07-15 01:47 - 00046912 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfilter.sys
2013-10-22 22:42 - 2013-07-15 01:47 - 00032064 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bfmon.sys
2013-10-22 22:41 - 2013-10-22 23:01 - 00000000 ____D C:\Users\Márcia\AppData\Local\cache
2013-10-22 22:41 - 2013-10-22 22:56 - 00000000 ____D C:\Users\Márcia\AppData\Local\Mobogenie
2013-10-22 22:41 - 2013-10-22 22:41 - 00000029 _____ C:\Windows\SysWOW64\config.ini
2013-10-22 22:37 - 2013-10-23 18:18 - 00000000 ____D C:\Users\Márcia\AppData\Roaming\iSafe
2013-10-22 21:50 - 2013-10-22 21:50 - 00000000 ____D C:\Users\Márcia\AppData\Local\aHaskZ3
2013-10-22 21:50 - 2013-08-07 16:32 - 02598912 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Márcia\AppData\Local\QtCore4.dll
2013-10-22 21:50 - 2013-06-27 11:16 - 08581632 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Márcia\AppData\Local\QtGui4.dll
2013-10-22 21:50 - 2013-06-27 11:10 - 01053696 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Users\Márcia\AppData\Local\QtNetwork4.dll
2013-10-22 21:50 - 2013-06-10 17:59 - 01120256 _____ (keepvid.com Company) C:\Users\Márcia\AppData\Local\keepvid.com.exe
2013-10-22 21:50 - 2011-06-11 01:58 - 00773968 _____ (Microsoft Corporation) C:\Users\Márcia\AppData\Local\msvcr100.dll
2013-10-22 21:50 - 2011-06-11 01:58 - 00421200 _____ (Microsoft Corporation) C:\Users\Márcia\AppData\Local\msvcp100.dll
2013-10-22 21:43 - 2013-10-23 09:33 - 00000286 __RSH C:\Users\Márcia\ntuser.pol
2013-10-22 21:18 - 2013-10-22 21:18 - 00000000 ____D C:\Users\Márcia\AppData\Local\{14E8DFE4-8AED-482F-952C-C8211DEF1B69}
2013-10-22 20:59 - 2013-10-22 21:55 - 00003364 _____ C:\Windows\System32\Tasks\Baidu PC Faster Update
2013-10-22 20:32 - 2013-10-22 20:32 - 00000000 ____D C:\Users\Márcia\AppData\Roaming\GetRightToGo
2013-10-21 16:02 - 2013-10-21 16:03 - 00000000 ____D C:\Users\Márcia\AppData\Local\{F1EAF023-5E44-44F7-951B-E1DAFEA76A74}
2013-10-17 11:09 - 2013-10-17 23:09 - 00000000 ____D C:\Users\Márcia\AppData\Local\{7EF28484-6FAB-4004-8C7B-86AEBBCABE06}
2013-10-16 22:04 - 2013-10-16 22:05 - 00000000 ____D C:\Users\Márcia\AppData\Local\{E3B5D6F1-B35D-42E0-8F6E-9F367325D441}
2013-10-16 10:01 - 2013-10-16 10:02 - 00000000 ____D C:\Users\Márcia\AppData\Local\{FD902894-4206-4A9A-ABDD-C108307F6A65}
2013-10-15 20:58 - 2013-10-15 20:58 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-15 20:58 - 2013-10-15 20:58 - 00000000 ____D C:\ProgramData\Oracle
2013-10-15 20:57 - 2013-10-15 20:57 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-15 20:57 - 2013-10-15 20:57 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-15 20:57 - 2013-10-15 20:57 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-15 20:57 - 2013-10-15 20:57 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-15 20:57 - 2013-10-15 20:57 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-15 14:03 - 2013-10-15 14:03 - 00000000 ____D C:\Users\Márcia\AppData\Local\{D7509210-54A7-485B-8D0F-6850AE41DF6E}
2013-10-14 21:40 - 2013-10-14 21:40 - 00000000 ____D C:\Users\Márcia\AppData\Local\{12B4F3DD-5959-4246-A1BA-225C6B96CAFF}
2013-10-10 18:25 - 2013-10-14 09:39 - 00000000 ____D C:\Users\Márcia\AppData\Local\{4C2C023E-7AF8-45F9-A895-1770237B4600}
2013-10-10 04:19 - 2013-09-22 21:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 04:19 - 2013-09-22 21:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 04:19 - 2013-09-22 21:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-10 04:19 - 2013-09-22 20:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 04:19 - 2013-09-22 20:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 04:19 - 2013-09-22 20:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-10 04:19 - 2013-09-22 20:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 04:19 - 2013-09-22 20:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-10 04:19 - 2013-09-21 01:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 04:19 - 2013-09-21 01:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 04:19 - 2013-09-21 00:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-10 04:19 - 2013-09-21 00:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-09 17:17 - 2013-07-04 10:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-09 17:17 - 2013-07-04 09:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-09 17:17 - 2013-06-06 03:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-09 17:17 - 2013-06-06 03:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-09 17:17 - 2013-06-06 03:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-09 17:17 - 2013-06-06 03:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-09 17:17 - 2013-06-06 02:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-09 17:17 - 2013-06-06 02:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-09 17:17 - 2013-06-06 02:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-09 17:17 - 2013-06-06 01:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-09 17:17 - 2013-06-06 01:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-09 17:17 - 2013-06-06 01:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-09 17:14 - 2013-09-13 23:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-09 17:14 - 2013-09-08 00:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-09 17:14 - 2013-09-08 00:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-09 17:14 - 2013-09-08 00:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-09 17:14 - 2013-08-29 00:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-09 17:14 - 2013-08-29 00:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-09 17:14 - 2013-08-29 00:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-09 17:14 - 2013-08-29 00:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-09 17:14 - 2013-08-29 00:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-09 17:14 - 2013-08-28 23:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-09 17:14 - 2013-08-28 23:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-09 17:14 - 2013-08-28 23:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-09 17:14 - 2013-08-28 23:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-09 17:14 - 2013-08-28 23:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-09 17:14 - 2013-08-28 23:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-09 17:14 - 2013-08-28 22:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-09 17:14 - 2013-08-28 22:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-09 17:14 - 2013-08-28 22:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-09 17:14 - 2013-08-28 22:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-09 17:14 - 2013-08-27 23:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-09 17:14 - 2013-07-12 08:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-09 17:14 - 2013-07-12 08:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-09 17:14 - 2013-07-04 10:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-09 17:14 - 2013-07-04 10:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-09 17:14 - 2013-07-04 09:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-09 17:14 - 2013-07-04 09:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-09 17:14 - 2013-07-04 08:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-09 17:14 - 2013-07-03 02:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-09 17:14 - 2013-07-03 02:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-09 17:14 - 2013-06-25 20:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-09 17:13 - 2013-09-03 23:37 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-09 17:13 - 2013-08-27 23:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-09 17:13 - 2013-08-01 10:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-09 17:13 - 2013-07-20 08:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 17:13 - 2013-07-20 08:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 16:40 - 2013-10-09 16:40 - 00000000 ____D C:\Users\Márcia\AppData\Local\{A4AA5555-F21A-4FEB-896D-8D1A9034F3A3}
2013-10-05 11:53 - 2013-10-08 10:15 - 00000000 ____D C:\Users\Márcia\AppData\Local\{8FC4CBBA-3D91-4B4D-8AA7-2E94E988D38A}
2013-10-04 11:52 - 2013-10-04 23:53 - 00000000 ____D C:\Users\Márcia\AppData\Local\{F5FBC234-39F8-403A-8438-B2B37C45FFF6}
2013-10-03 17:45 - 2013-10-23 19:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-03 15:45 - 2013-10-03 15:45 - 00000000 ____D C:\Users\Márcia\AppData\Local\{BBFEB133-C955-4178-9C10-56A99389A0C9}
2013-10-02 18:27 - 2013-10-02 18:27 - 00000000 ____D C:\Users\Márcia\AppData\Local\{B4C6D4FB-4844-46D5-B9E3-D3F16824D7AA}
2013-10-01 13:50 - 2013-10-01 13:50 - 00000000 ____D C:\Users\Márcia\AppData\Local\{0A6CB479-D168-4EF6-A922-112B4DF34F61}
2013-09-30 11:47 - 2013-09-30 11:47 - 00000000 ____D C:\Users\Márcia\AppData\Local\{274A2DA8-042B-4B2C-BEE6-C4CC7195B1F0}
2013-09-29 19:38 - 2013-09-29 19:39 - 00000000 ____D C:\Users\Márcia\AppData\Local\{9757E295-C5BC-46D5-852A-C25310EA2910}
2013-09-28 15:01 - 2013-09-28 15:02 - 00000000 ____D C:\Users\Márcia\AppData\Local\{8D4BB511-2417-41D4-B7E3-1BCEA4A4E3A7}
2013-09-27 11:25 - 2013-09-27 23:26 - 00000000 ____D C:\Users\Márcia\AppData\Local\{EF497F18-4B01-4180-BA55-5BB7610B8C29}
2013-09-26 16:50 - 2013-09-26 16:50 - 00000000 ____D C:\Users\Márcia\AppData\Local\{4BC57A2D-374F-4E3D-9F61-98520186E038}

==================== One Month Modified Files and Folders =======

2013-10-23 20:22 - 2013-10-23 20:22 - 00000000 ____D C:\FRST
2013-10-23 20:21 - 2013-10-23 20:21 - 01955374 _____ (Farbar) C:\Users\Márcia\Downloads\FRST64.exe
2013-10-23 20:21 - 2012-02-07 02:06 - 01790977 _____ C:\Windows\WindowsUpdate.log
2013-10-23 20:18 - 2013-10-23 20:18 - 00000000 ___RD C:\Users\Márcia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2013-10-23 20:18 - 2013-08-11 19:20 - 00003816 _____ C:\Windows\setupact.log
2013-10-23 20:18 - 2013-07-22 17:29 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-23 20:18 - 2012-02-07 02:44 - 00000000 ____D C:\Users\Usuário Padrão\AppData\Local\SoftThinks
2013-10-23 20:18 - 2012-02-07 02:44 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2013-10-23 20:18 - 2012-02-07 02:44 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2013-10-23 20:18 - 2012-02-07 02:34 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2013-10-23 20:18 - 2009-07-14 03:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-23 20:15 - 2013-10-23 20:15 - 00000587 _____ C:\Users\Márcia\Downloads\fix.zip
2013-10-23 20:02 - 2012-04-12 23:08 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{AFE9473B-82C0-4EAB-A46B-BCE3174A9E08}
2013-10-23 20:02 - 2009-07-14 02:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-23 20:02 - 2009-07-14 02:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-23 20:01 - 2013-07-22 17:29 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-23 19:54 - 2013-10-23 19:52 - 00000000 ____D C:\AdwCleaner
2013-10-23 19:53 - 2013-10-03 17:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-23 19:51 - 2013-10-23 19:51 - 01060070 _____ C:\Users\Márcia\Downloads\AdwCleaner.exe
2013-10-23 19:49 - 2012-05-24 12:17 - 00000902 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-23 19:12 - 2013-10-23 19:12 - 00807936 _____ C:\Users\Márcia\Downloads\A Pedra.pps
2013-10-23 19:06 - 2013-08-11 19:20 - 00028130 _____ C:\Windows\PFRO.log
2013-10-23 19:06 - 2012-03-12 19:05 - 00000506 _____ C:\Windows\Tasks\SystemToolsDailyTest.job
2013-10-23 18:47 - 2012-02-10 14:11 - 00000000 ____D C:\Users\Márcia
2013-10-23 18:37 - 2013-10-23 09:33 - 00000000 ____D C:\Users\Márcia\AppData\Local\CS Browser Assistant
2013-10-23 18:36 - 2012-03-12 19:05 - 00003536 _____ C:\Windows\System32\Tasks\SystemToolsDailyTest
2013-10-23 18:20 - 2012-04-09 20:40 - 00000000 ____D C:\Users\Todos os Usuários\MFAData
2013-10-23 18:20 - 2012-04-09 20:40 - 00000000 ____D C:\ProgramData\MFAData
2013-10-23 18:20 - 2010-11-21 07:37 - 00703890 _____ C:\Windows\system32\prfh0416.dat
2013-10-23 18:20 - 2010-11-21 07:37 - 00146676 _____ C:\Windows\system32\prfc0416.dat
2013-10-23 18:20 - 2009-07-14 03:13 - 01628224 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-23 18:18 - 2013-10-22 22:37 - 00000000 ____D C:\Users\Márcia\AppData\Roaming\iSafe
2013-10-23 09:33 - 2013-10-23 09:33 - 00000000 ____D C:\Users\Márcia\AppData\Roaming\eCyber
2013-10-23 09:33 - 2013-10-22 21:43 - 00000286 __RSH C:\Users\Márcia\ntuser.pol
2013-10-23 09:18 - 2013-10-23 09:18 - 00000000 ____D C:\Users\Márcia\AppData\Local\{48EDF1B1-BFF6-4285-ADF3-6954BAF8F0D6}
2013-10-23 09:13 - 2013-04-15 23:34 - 00000985 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-10-22 23:01 - 2013-10-22 22:41 - 00000000 ____D C:\Users\Márcia\AppData\Local\cache
2013-10-22 22:56 - 2013-10-22 22:41 - 00000000 ____D C:\Users\Márcia\AppData\Local\Mobogenie
2013-10-22 22:41 - 2013-10-22 22:41 - 00000029 _____ C:\Windows\SysWOW64\config.ini
2013-10-22 22:40 - 2013-08-10 16:19 - 00000000 ____D C:\Program Files (x86)\Baidu Security
2013-10-22 22:06 - 2012-02-07 02:57 - 00000000 ____D C:\Users\Todos os Usuários\Sonic
2013-10-22 22:06 - 2012-02-07 02:57 - 00000000 ____D C:\ProgramData\Sonic
2013-10-22 21:55 - 2013-10-22 20:59 - 00003364 _____ C:\Windows\System32\Tasks\Baidu PC Faster Update
2013-10-22 21:50 - 2013-10-22 21:50 - 00000000 ____D C:\Users\Márcia\AppData\Local\aHaskZ3
2013-10-22 21:43 - 2009-07-14 01:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-10-22 21:43 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2013-10-22 21:18 - 2013-10-22 21:18 - 00000000 ____D C:\Users\Márcia\AppData\Local\{14E8DFE4-8AED-482F-952C-C8211DEF1B69}
2013-10-22 21:16 - 2012-02-29 23:51 - 00000000 ____D C:\Users\Todos os Usuários\GbPlugin
2013-10-22 21:16 - 2012-02-29 23:51 - 00000000 ____D C:\ProgramData\GbPlugin
2013-10-22 20:59 - 2013-08-10 16:21 - 00000000 ____D C:\Users\Todos os Usuários\Baidu Security
2013-10-22 20:59 - 2013-08-10 16:21 - 00000000 ____D C:\ProgramData\Baidu Security
2013-10-22 20:32 - 2013-10-22 20:32 - 00000000 ____D C:\Users\Márcia\AppData\Roaming\GetRightToGo
2013-10-21 18:24 - 2013-04-05 19:44 - 00021729 _____ C:\Users\Márcia\Documents\despesas.xlsx
2013-10-21 16:03 - 2013-10-21 16:02 - 00000000 ____D C:\Users\Márcia\AppData\Local\{F1EAF023-5E44-44F7-951B-E1DAFEA76A74}
2013-10-17 23:09 - 2013-10-17 11:09 - 00000000 ____D C:\Users\Márcia\AppData\Local\{7EF28484-6FAB-4004-8C7B-86AEBBCABE06}
2013-10-16 22:05 - 2013-10-16 22:04 - 00000000 ____D C:\Users\Márcia\AppData\Local\{E3B5D6F1-B35D-42E0-8F6E-9F367325D441}
2013-10-16 16:04 - 2013-07-22 17:33 - 00002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-16 10:02 - 2013-10-16 10:01 - 00000000 ____D C:\Users\Márcia\AppData\Local\{FD902894-4206-4A9A-ABDD-C108307F6A65}
2013-10-15 20:58 - 2013-10-15 20:58 - 00000000 ____D C:\Users\Todos os Usuários\Oracle
2013-10-15 20:58 - 2013-10-15 20:58 - 00000000 ____D C:\ProgramData\Oracle
2013-10-15 20:57 - 2013-10-15 20:57 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-15 20:57 - 2013-10-15 20:57 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-15 20:57 - 2013-10-15 20:57 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-15 20:57 - 2013-10-15 20:57 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-15 20:57 - 2013-10-15 20:57 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-15 14:03 - 2013-10-15 14:03 - 00000000 ____D C:\Users\Márcia\AppData\Local\{D7509210-54A7-485B-8D0F-6850AE41DF6E}
2013-10-14 21:40 - 2013-10-14 21:40 - 00000000 ____D C:\Users\Márcia\AppData\Local\{12B4F3DD-5959-4246-A1BA-225C6B96CAFF}
2013-10-14 17:59 - 2012-03-12 19:05 - 00000564 _____ C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
2013-10-14 10:33 - 2009-07-14 01:20 - 00000000 ____D C:\Windows\rescache
2013-10-14 09:39 - 2013-10-10 18:25 - 00000000 ____D C:\Users\Márcia\AppData\Local\{4C2C023E-7AF8-45F9-A895-1770237B4600}
2013-10-13 16:56 - 2013-07-22 17:29 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-13 16:56 - 2013-07-22 17:29 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-10 18:25 - 2012-03-12 19:05 - 00004270 _____ C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2013-10-10 04:40 - 2009-07-14 02:45 - 00461496 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-10 04:39 - 2013-03-19 01:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-10 04:39 - 2013-03-19 01:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-10 04:21 - 2012-03-06 22:17 - 00000000 ____D C:\Users\Todos os Usuários\Microsoft Help
2013-10-10 04:21 - 2012-03-06 22:17 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-10 04:17 - 2011-02-12 09:51 - 01598160 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-10 04:12 - 2013-08-14 23:54 - 00000000 ____D C:\Windows\system32\MRT
2013-10-10 04:10 - 2012-03-13 00:00 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-09 16:51 - 2012-05-24 12:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 16:51 - 2012-05-24 12:17 - 00003840 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 16:51 - 2012-02-07 02:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 16:40 - 2013-10-09 16:40 - 00000000 ____D C:\Users\Márcia\AppData\Local\{A4AA5555-F21A-4FEB-896D-8D1A9034F3A3}
2013-10-08 10:15 - 2013-10-05 11:53 - 00000000 ____D C:\Users\Márcia\AppData\Local\{8FC4CBBA-3D91-4B4D-8AA7-2E94E988D38A}
2013-10-04 23:53 - 2013-10-04 11:52 - 00000000 ____D C:\Users\Márcia\AppData\Local\{F5FBC234-39F8-403A-8438-B2B37C45FFF6}
2013-10-04 11:50 - 2013-05-17 21:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-04 01:21 - 2013-04-28 16:35 - 00000000 ____D C:\Users\Márcia\AppData\Local\Mozilla
2013-10-03 15:45 - 2013-10-03 15:45 - 00000000 ____D C:\Users\Márcia\AppData\Local\{BBFEB133-C955-4178-9C10-56A99389A0C9}
2013-10-02 18:27 - 2013-10-02 18:27 - 00000000 ____D C:\Users\Márcia\AppData\Local\{B4C6D4FB-4844-46D5-B9E3-D3F16824D7AA}
2013-10-01 19:48 - 2013-07-30 19:33 - 00003729 _____ C:\Program Files (x86)\Mozilla Firefoxavg-secure-search.xml
2013-10-01 19:48 - 2013-04-15 23:34 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-10-01 13:50 - 2013-10-01 13:50 - 00000000 ____D C:\Users\Márcia\AppData\Local\{0A6CB479-D168-4EF6-A922-112B4DF34F61}
2013-09-30 19:27 - 2012-04-16 22:37 - 00011892 _____ C:\Users\Márcia\Documents\NIVER.xlsx
2013-09-30 11:47 - 2013-09-30 11:47 - 00000000 ____D C:\Users\Márcia\AppData\Local\{274A2DA8-042B-4B2C-BEE6-C4CC7195B1F0}
2013-09-29 19:39 - 2013-09-29 19:38 - 00000000 ____D C:\Users\Márcia\AppData\Local\{9757E295-C5BC-46D5-852A-C25310EA2910}
2013-09-28 15:02 - 2013-09-28 15:01 - 00000000 ____D C:\Users\Márcia\AppData\Local\{8D4BB511-2417-41D4-B7E3-1BCEA4A4E3A7}
2013-09-27 23:26 - 2013-09-27 11:25 - 00000000 ____D C:\Users\Márcia\AppData\Local\{EF497F18-4B01-4180-BA55-5BB7610B8C29}
2013-09-26 16:50 - 2013-09-26 16:50 - 00000000 ____D C:\Users\Márcia\AppData\Local\{4BC57A2D-374F-4E3D-9F61-98520186E038}
2013-09-25 16:28 - 2013-09-22 23:04 - 00000000 ____D C:\Users\Márcia\AppData\Local\{5890D22C-3220-43B0-9F80-241A5CB67DAE}

Some content of TEMP:
====================
C:\Users\Márcia\AppData\Local\Temp\.gbas.dll
C:\Users\Márcia\AppData\Local\Temp\041013_d.exe
C:\Users\Márcia\AppData\Local\Temp\041013_y.exe
C:\Users\Márcia\AppData\Local\Temp\76970uninstall.exe
C:\Users\Márcia\AppData\Local\Temp\APNStub.exe
C:\Users\Márcia\AppData\Local\Temp\app.exe
C:\Users\Márcia\AppData\Local\Temp\appshat-distribution.exe
C:\Users\Márcia\AppData\Local\Temp\apptorun.exe
C:\Users\Márcia\AppData\Local\Temp\BackupSetup.exe
C:\Users\Márcia\AppData\Local\Temp\Baidu_Secure_SystemUp_3.7.1.41942.exe
C:\Users\Márcia\AppData\Local\Temp\Baixar Musicas Gratis_updater.exe
C:\Users\Márcia\AppData\Local\Temp\BeamriseSetup.exe
C:\Users\Márcia\AppData\Local\Temp\bi_cleaner.exe
C:\Users\Márcia\AppData\Local\Temp\bundlesweetimsetup.exe
C:\Users\Márcia\AppData\Local\Temp\crp4EBC.exe
C:\Users\Márcia\AppData\Local\Temp\crp4FD7.exe
C:\Users\Márcia\AppData\Local\Temp\DeltaTB.exe
C:\Users\Márcia\AppData\Local\Temp\fh0zhbma.dll
C:\Users\Márcia\AppData\Local\Temp\FLVPlayerSetup.exe
C:\Users\Márcia\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Márcia\AppData\Local\Temp\GenericUninstall.exe
C:\Users\Márcia\AppData\Local\Temp\GoogleUpdateSetup_latest.exe
C:\Users\Márcia\AppData\Local\Temp\Installer.exe
C:\Users\Márcia\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Márcia\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Márcia\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Márcia\AppData\Local\Temp\mgsqlite3.dll
C:\Users\Márcia\AppData\Local\Temp\minibar-master.exe
C:\Users\Márcia\AppData\Local\Temp\MusicCodecPack__3465_il1.exe
C:\Users\Márcia\AppData\Local\Temp\MyBabylonTB.exe
C:\Users\Márcia\AppData\Local\Temp\oi_{6C21CBC5-75B9-48CE-995B-62D7462C62DF}.exe
C:\Users\Márcia\AppData\Local\Temp\OptimizerPro.exe
C:\Users\Márcia\AppData\Local\Temp\PC_Faster_Setup_Mini_B25_S.exe
C:\Users\Márcia\AppData\Local\Temp\pricepeep_130001_1001.exe
C:\Users\Márcia\AppData\Local\Temp\Quarantine.exe
C:\Users\Márcia\AppData\Local\Temp\QuickShare1.exe
C:\Users\Márcia\AppData\Local\Temp\SF_Update.exe
C:\Users\Márcia\AppData\Local\Temp\SmartbarExeInstaller.exe
C:\Users\Márcia\AppData\Local\Temp\Sqlite3.dll
C:\Users\Márcia\AppData\Local\Temp\uninst1.exe
C:\Users\Márcia\AppData\Local\Temp\uninstaller.exe
C:\Users\Márcia\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\Márcia\AppData\Local\Temp\uti4E9C.exe
C:\Users\Márcia\AppData\Local\Temp\uti4FA7.exe
C:\Users\Márcia\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Márcia\AppData\Local\Temp\WSSetup.exe
C:\Users\Márcia\AppData\Local\Temp\?odec Performer803912.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-10-21 17:37

==================== End Of Log ============================

por Wings [In Memoriam] Qua 23 Out 2013, 20:49

Baixe o arquivo fixlist.txt e salve-o no mesmo local onde encontra-se o FRST

*Clique com o botão direito do mouse no FRST e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Clique [Fix] e cole o relatório Fixlog.txt criado no Desktop

Shetef solutions & consulting 1998 Ltd 772309

Reinicie o PC

por Marcia Maria Qua 23 Out 2013, 20:57

Relatório

por Wings [In Memoriam] Qua 23 Out 2013, 21:01

Procedimento errado!!

Leia atentamente o procedimento.

por Marcia Maria Qua 23 Out 2013, 21:19

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-10-2013
Ran by Márcia at 2013-10-23 21:14:45 Run:1
Running from C:\Users\Márcia\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Users\Márcia\AppData\Local\keepvid.com.exe
C:\Program Files (x86)\Baixar Musicas Gratis
C:\Program Files (x86)\LemurLeap
C:\Windows\System32\drivers\Bfilter.sys
C:\Windows\System32\drivers\Bfmon.sys
C:\Windows\System32\drivers\Bprotect.sys
C:\Users\Márcia\AppData\Local\aHaskZ3
C:\Windows\System32\Tasks\Baidu PC Faster Update
C:\Program Files (x86)\Baidu Security
C:\Users\Todos os Usuários\Baidu Security
HKLM-x32\...\Run: [keepvid]
BHO-x32: keepvid.com - {49ed9900-38cd-453c-bba7-3f2613317f5a}
BHO-x32: SoundFrost - {d997c836-ff82-4519-b459-1482ba942a4f}
FF HKCU\...\Firefox\Extensions: [SoundFrost@helper.com]
FF HKCU\...\Firefox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack]
CHR DefaultSearchURL: (Web Search) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link]
CHR Plugin: (AVG SiteSafety plugin)
CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction
R1 Bfilter;
R1 Bfmon;
R1 Bprotect;
S3 BprotectEx;
S3 PCFApiUtil;

*****************

C:\Users\Márcia\AppData\Local\keepvid.com.exe => Moved successfully.
"C:\Program Files (x86)\Baixar Musicas Gratis" => File/Directory not found.
"C:\Program Files (x86)\LemurLeap" => File/Directory not found.
C:\Windows\System32\drivers\Bfilter.sys => Moved successfully.
C:\Windows\System32\drivers\Bfmon.sys => Moved successfully.
C:\Windows\System32\drivers\Bprotect.sys => Moved successfully.
C:\Users\Márcia\AppData\Local\aHaskZ3 => Moved successfully.
C:\Windows\System32\Tasks\Baidu PC Faster Update => Moved successfully.
C:\Program Files (x86)\Baidu Security => Moved successfully.
C:\Users\Todos os Usuários\Baidu Security => Moved successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HKLM-x32\...\Run: [keepvid] => Value not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{49ed9900-38cd-453c-bba7-3f2613317f5a} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{49ed9900-38cd-453c-bba7-3f2613317f5a} => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d997c836-ff82-4519-b459-1482ba942a4f} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{d997c836-ff82-4519-b459-1482ba942a4f} => Key deleted successfully.
HKCU\Software\Mozilla\Firefox\Extensions\\FF HKCU\...\Firefox\Extensions: [SoundFrost@helper.com] => Value not found.
HKCU\Software\Mozilla\Firefox\Extensions\\FF HKCU\...\Firefox\Extensions: [jid1-BPkqJiAqSvlIBQ@jetpack] => Value not found.
CHR DefaultSearchURL: (Web Search) - [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] ==> The Chrome "Settings" can be used to fix the entry.
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof] => Key not found.
"CHR HKLM-x32\...\Chrome\Extension: [jlnfdbbladgcmhhamgkioifhbobjaoof]" => File/Directory not found.
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
HKCU\SOFTWARE\Policies\Google => Key deleted successfully.
Bfilter => Service deleted successfully.
Bfmon => Service deleted successfully.
Bprotect => Service deleted successfully.
BprotectEx => Service deleted successfully.
PCFApiUtil => Service deleted successfully.

The system needs a manual reboot.

==== End of Fixlog ====

por Wings [In Memoriam] Qua 23 Out 2013, 21:21

OK..

Reinicie o PC

*Informe

por Marcia Maria Qua 23 Out 2013, 21:31

Shetef solutions & consulting 1998 Ltd 960671

valeu um grande abraço- resolvido

por Wings [In Memoriam] Qua 23 Out 2013, 21:32

Precisamos ajustar seus navegadores...

Shetef solutions & consulting 1998 Ltd 772309

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Smeenk)

*Extraia o arquivo Zoek.exe para o Desktop (Área de Trabalho)

*Clique com o botão direito do mouse no Zoek e selecione [Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Copie e cole as linhas em marrom no espaço do Zoek

autoclean;
emptyalltemp;

*Feche o seu navegador e clique [Run Script]

*Durante o scan a mensagem abaixo será apresentada. Aguarde o término...pode demorar!

Zoek.exe is running now.
Do not start any browser windows, they will be closed automatically.
Please wait! This window will close when finished.
A logfile will open afterwards and can also be found on your systemdrive as zoek-results.log

*Caso a reinicialização do PC seja solicitada, clique [OK]

*Cole ou anexe o relatório C:\zoek-results.txt

por Marcia Maria Qua 23 Out 2013, 22:27

Zoek.exe Version 4.0.0.5 Updated 22-October-2013
Tool run by M rcia on 23/10/2013 at 22:11:12,57.
Microsoft Windows 7 Home Basic 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MRCIA~1\Downloads\zoek\zoek.exe [Script inserted]

==== Older Logs ======================

C:\zoek-results2013-10-23-234312.log 409 bytes

por Wings [In Memoriam] Qua 23 Out 2013, 22:31

O PC está limpo.

Shetef solutions & consulting 1998 Ltd 772309

Baixe o [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] (...de Xplode) e salve-o no Desktop (Área de Trabalho)

*Execute-o, deixe selecionadas as opções Remove disinfection tools e Purge system restore

[Tens de ter uma conta e sessão iniciada para poderes visualizar esta imagem]

*Clique [Run] e cole o relatório apresentado

Um abraço... Shetef solutions & consulting 1998 Ltd 960671

por Marcia Maria Qua 23 Out 2013, 22:34

# DelFix v10.5 - Logfile created 23/10/2013 at 22:33:14
# Updated 17/10/2013 by Xplode
# Username : Márcia - MÁRCIA-PC
# Operating System : Windows 7 Home Basic Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek-results.log
Deleted : C:\zoek-results2013-10-23-234312.log
Deleted : C:\Users\Márcia\Desktop\zoek - Atalho.lnk

~ Cleaning system restore ...

Deleted : RP #217 [End of disinfection | 10/23/2013 23:32:49]
Deleted : RP #218 [zoek.exe restore point | 10/23/2013 23:43:07]

New restore point created !

########## - EOF - ##########

por Wings [In Memoriam] Qua 23 Out 2013, 22:37

CASO RESOLVIDO

Caso o(a) autor(a) do tópico necessite, o mesmo será reaberto, para isso deverá entrar em contato com um dos membros da [Tens de ter uma conta e sessão iniciada para poderes visualizar este link] solicitando o desbloqueio.

por Conteúdo patrocinado

Shetef solutions & consulting 1998 Ltd